This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json) Hash identifier: pbrJGIQYoaQ9mJq7Ty/hc117tNhCYrYR3PU0YPm0HYw= Subject key identifier: 3E:C4:C3:5A:DC:A1:1D:6D:37:CE:62:F0:08:FD:AF:3B:3A:D2:7E:DC Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54 Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654 Certificate serial: 019B115D34DBE86931051C502A54141AD74B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft Manifest number: 117E Signing time: Fri 12 Dec 2025 07:01:19 +0000 Manifest this update: Fri 12 Dec 2025 07:01:19 +0000 Manifest next update: Sat 13 Dec 2025 07:01:19 +0000 Files and hashes: 1: 26IGIkKKzrFcY_mAcu5qAWXSYNM.roa (hash: AipHDf8GM8mnMeuhSsY7F7gLpKfZW2aW0smCsw7aDgA=) 2: Bw2FujTWHMpYNTWhN02tbAlIgsw.roa (hash: xLrbRcYSVut1IaAOIBEYkh+llIkiJK/mUso2Hz1ldCA=) 3: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=) 4: I0FL7Dchm9rnaWDDI9OKxv66R2c.roa (hash: cq/fzJDEl5efuviSrzcYQ/eMdyrzXj2HULveLhWUz0M=) 5: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: bJaZY91Kj3vE2Mxzwc7flpC+WXECNyBYANxUc92oJyI=) 6: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=) 7: diTpDcQV1hJhwW2jUQIMay9fans.roa (hash: bv+C168Ppj6md6pEtWzK8GIbrplV3RXupQDn2OyhLhw=) 8: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 07:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:5d:34:db:e8:69:31:05:1c:50:2a:54:14:1a:d7:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654 Validity Not Before: Dec 12 07:01:19 2025 GMT Not After : Dec 13 07:01:19 2025 GMT Subject: CN=3ec4c35adca11d6d37ce62f008fdaf3b3ad27edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:21:6e:c1:84:fd:f8:4a:11:10:91:a1:e6:07: 1f:a2:ee:62:0d:f2:c1:f7:06:a1:ad:eb:53:6d:c2: fe:0d:68:b7:d2:89:27:8c:09:80:80:be:c2:2b:66: 7b:49:fa:61:a5:e8:2e:26:94:f5:68:6d:45:94:b3: 3f:fe:42:fe:39:59:18:b8:3d:1f:1d:c4:3d:14:f2: 34:89:a5:03:b7:5d:5a:8d:0f:34:0e:0c:50:81:1e: 3d:88:35:ea:82:ae:42:86:fc:33:1a:8d:b9:ae:af: 14:f0:3c:b3:7d:bf:e5:9c:f7:2c:2f:d0:7d:36:78: 17:64:c5:f5:78:6c:52:c6:45:7c:d0:07:c7:47:c9: 07:06:d2:d0:ef:2c:c2:d9:95:26:7f:a4:63:2d:81: 4a:0e:8a:35:ae:02:06:c8:0a:0d:1c:26:ab:88:39: 70:b0:ba:f7:2f:dd:79:06:d1:6d:c2:f8:84:5c:d4: a7:e3:8f:de:d9:58:74:17:2a:62:09:88:ee:b7:81: e3:ce:57:48:0a:b6:29:24:46:0c:96:92:da:ce:c8: 71:9f:e2:95:15:27:e0:88:fc:b1:72:e3:1a:cf:07: 19:35:a7:96:fb:17:3e:a2:4a:e9:b6:13:bb:68:f9: 7b:8d:cb:84:ab:68:5a:c2:39:7d:67:a1:dd:3d:0b: bb:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C4:C3:5A:DC:A1:1D:6D:37:CE:62:F0:08:FD:AF:3B:3A:D2:7E:DC X509v3 Authority Key Identifier: keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:21:63:77:e7:60:e8:38:09:dc:ba:ed:3a:22:bc:ff:3f:7d: 31:a1:2e:fe:38:ce:16:f8:34:d8:7a:d8:d2:39:ae:f3:aa:5a: d0:31:6f:34:49:94:c4:67:9d:37:13:55:10:6b:42:f2:b0:be: e0:8d:fe:26:fc:4c:a8:df:f3:c6:66:ec:89:85:69:ae:91:0b: b0:47:66:6e:a6:7c:41:5e:b0:d6:a8:02:7f:50:38:7b:c6:3e: e7:78:ae:0d:f5:5e:9b:12:68:05:6e:cd:71:f6:b6:fc:a0:d0: b7:54:ef:99:fe:93:dd:5a:0d:28:36:7f:db:79:a5:1e:01:5e: 57:bf:64:84:4f:f0:0f:d8:35:67:0c:ac:aa:fd:4b:46:d0:85: 1f:42:31:a1:4d:6a:37:50:0e:b1:f3:46:2f:3b:2e:f3:44:fc: 3b:22:a9:15:92:6f:eb:40:78:1e:ff:c8:6e:76:72:00:9d:f8: c9:2d:d2:77:34:10:d9:87:b2:57:e6:70:9e:e1:f9:0c:89:cf: d1:83:1e:f7:5b:98:5f:d8:2e:6c:4f:18:23:b1:6d:b8:68:07: 50:32:93:1c:35:72:c1:06:f7:7f:69:ce:06:2f:3b:88:41:52: 00:3f:52:90:b3:c2:c3:35:0a:80:09:68:21:b9:5e:cc:1d:a8: 98:25:48:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRXTTb6GkxBRxQKlQUGtdLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkOGE1NTNlMDVmMDMxOWJmNDUyZmEyMDZjMTRjY2RhODcz MDQ2NTQwHhcNMjUxMjEyMDcwMTE5WhcNMjUxMjEzMDcwMTE5WjAzMTEwLwYDVQQD EygzZWM0YzM1YWRjYTExZDZkMzdjZTYyZjAwOGZkYWYzYjNhZDI3ZWRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmSFuwYT9+EoREJGh5gcfou5iDfLB 9wahretTbcL+DWi30oknjAmAgL7CK2Z7SfphpeguJpT1aG1FlLM//kL+OVkYuD0f HcQ9FPI0iaUDt11ajQ80DgxQgR49iDXqgq5ChvwzGo25rq8U8Dyzfb/lnPcsL9B9 NngXZMX1eGxSxkV80AfHR8kHBtLQ7yzC2ZUmf6RjLYFKDoo1rgIGyAoNHCariDlw sLr3L915BtFtwviEXNSn44/e2Vh0FypiCYjut4HjzldICrYpJEYMlpLazshxn+KV FSfgiPyxcuMazwcZNaeW+xc+okrpthO7aPl7jcuEq2hawjl9Z6HdPQu7TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD7Ew1rcoR1tN85i8Aj9rzs60n7cMB8GA1UdIwQY MBaAFD2KVT4F8DGb9FL6IGwUzNqHMEZUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1Mjct MGZiNDgyM2Y1Yjg3LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1MjctMGZiNDgyM2Y1Yjg3 LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACSFjd+dg 6DgJ3LrtOiK8/z99MaEu/jjOFvg02HrY0jmu86pa0DFvNEmUxGedNxNVEGtC8rC+ 4I3+JvxMqN/zxmbsiYVprpELsEdmbqZ8QV6w1qgCf1A4e8Y+53iuDfVemxJoBW7N cfa2/KDQt1Tvmf6T3VoNKDZ/23mlHgFeV79khE/wD9g1Zwysqv1LRtCFH0IxoU1q N1AOsfNGLzsu80T8OyKpFZJv60B4Hv/IbnZyAJ34yS3SdzQQ2YeyV+ZwnuH5DInP 0YMe91uYX9gubE8YI7FtuGgHUDKTHDVywQb3f2nOBi87iEFSAD9SkLPCwzUKgAlo IblezB2omCVIvQ== -----END CERTIFICATE-----Generated at Fri Dec 12 14:19:45 2025 by rpki-client